Denny Schierz
2011-03-04 13:10:30 UTC
hi,
I've installed the latest icinga-web and it works. Now i want to
authenticate against ldap with http-basic. It works too, but now, I
can't login as "root", cause the "root" user doesn't exist in LDAP.
So, how can I manage this problem, to have regular LDAP accounts, but
the local icinga-web "root" account is also available?
Ah, i used the Basic-auth via Apache, 'cause it was easier for me, than
the XML things ... ;-) :
================
AuthType Basic
AuthName "Icinga Monitoring"
AuthBasicProvider ldap
AuthLDAPURL "ldap://ldap2.domain.foo
ldap.domain.foo/cn=accounts,dc=domain,dc=foo?uid?sub?(objectClass=*)"
AuthLDAPGroupAttribute member
AuthLDAPGroupAttributeIsDN On
AuthzLDAPAuthoritative Off
# Define allowed LDAP users
Require ldap-group cn=fb,cn=admins,cn=groups,dc=domain,dc=foo
=================
any suggestions?
cu denny
I've installed the latest icinga-web and it works. Now i want to
authenticate against ldap with http-basic. It works too, but now, I
can't login as "root", cause the "root" user doesn't exist in LDAP.
So, how can I manage this problem, to have regular LDAP accounts, but
the local icinga-web "root" account is also available?
Ah, i used the Basic-auth via Apache, 'cause it was easier for me, than
the XML things ... ;-) :
================
AuthType Basic
AuthName "Icinga Monitoring"
AuthBasicProvider ldap
AuthLDAPURL "ldap://ldap2.domain.foo
ldap.domain.foo/cn=accounts,dc=domain,dc=foo?uid?sub?(objectClass=*)"
AuthLDAPGroupAttribute member
AuthLDAPGroupAttributeIsDN On
AuthzLDAPAuthoritative Off
# Define allowed LDAP users
Require ldap-group cn=fb,cn=admins,cn=groups,dc=domain,dc=foo
=================
any suggestions?
cu denny